CVE-2017-6627 : A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and

A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 through 3.18 could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and a denial of service (DoS) condition. The vulnerability is due to Cisco IOS Software application changes that create UDP sockets and leave the sockets idle without closing them. An attacker could exploit this vulnerability by sending UDP packets with a destination port of 0 to an affected device. A successful exploit could allow the attacker to cause UDP packets to be held in the input interfaces queue, resulting in a DoS condition. The input interface queue will stop holding UDP packets when it receives 250 packets. Cisco Bug IDs: CSCup10024, CSCva55744, CSCva95506.

Published 2017-09-07 21:29:01

Updated 2025-03-21 20:43:38

Source Cisco Systems, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2017-6627

Cisco » IOS » Version: 15.4(1)t4
cpe:2.3:o:cisco:ios:15.4\(1\)t4:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(1)t3
cpe:2.3:o:cisco:ios:15.4\(1\)t3:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(2)t1
cpe:2.3:o:cisco:ios:15.4\(2\)t1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(2)t
cpe:2.3:o:cisco:ios:15.4\(2\)t:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(2)t2
cpe:2.3:o:cisco:ios:15.4\(2\)t2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(1)t
cpe:2.3:o:cisco:ios:15.4\(1\)t:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(1)t2
cpe:2.3:o:cisco:ios:15.4\(1\)t2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(1)t1
cpe:2.3:o:cisco:ios:15.4\(1\)t1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(2)gc
cpe:2.3:o:cisco:ios:15.2\(2\)gc:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m2.2
cpe:2.3:o:cisco:ios:15.4\(3\)m2.2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m
cpe:2.3:o:cisco:ios:15.4\(3\)m:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m1
cpe:2.3:o:cisco:ios:15.4\(3\)m1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m2
cpe:2.3:o:cisco:ios:15.4\(3\)m2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m6
cpe:2.3:o:cisco:ios:15.4\(3\)m6:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m5
cpe:2.3:o:cisco:ios:15.4\(3\)m5:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m3
cpe:2.3:o:cisco:ios:15.4\(3\)m3:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(1)gc2
cpe:2.3:o:cisco:ios:15.2\(1\)gc2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m4
cpe:2.3:o:cisco:ios:15.4\(3\)m4:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(3r)gca
cpe:2.3:o:cisco:ios:15.2\(3r\)gca:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(4)gc3
cpe:2.3:o:cisco:ios:15.2\(4\)gc3:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(1)gc1
cpe:2.3:o:cisco:ios:15.2\(1\)gc1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(1)gc
cpe:2.3:o:cisco:ios:15.2\(1\)gc:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(3)gc1
cpe:2.3:o:cisco:ios:15.2\(3\)gc1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(3)gc
cpe:2.3:o:cisco:ios:15.2\(3\)gc:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.1(2)gc1
cpe:2.3:o:cisco:ios:15.1\(2\)gc1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.1(2)gc
cpe:2.3:o:cisco:ios:15.1\(2\)gc:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.1(4)gc2
cpe:2.3:o:cisco:ios:15.1\(4\)gc2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.1(4)gc1
cpe:2.3:o:cisco:ios:15.1\(4\)gc1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.1(4)gc
cpe:2.3:o:cisco:ios:15.1\(4\)gc:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.1(2)gc2
cpe:2.3:o:cisco:ios:15.1\(2\)gc2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(4)gc2
cpe:2.3:o:cisco:ios:15.2\(4\)gc2:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(4)gc1
cpe:2.3:o:cisco:ios:15.2\(4\)gc1:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.2(4)gc
cpe:2.3:o:cisco:ios:15.2\(4\)gc:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m6a
cpe:2.3:o:cisco:ios:15.4\(3\)m6a:*:*:*:*:*:*:*
Matching versions
Cisco » IOS » Version: 15.4(3)m7
cpe:2.3:o:cisco:ios:15.4\(3\)m7:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.3s
cpe:2.3:o:cisco:ios_xe:3.16.3s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.2s
cpe:2.3:o:cisco:ios_xe:3.16.2s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.17.1s
cpe:2.3:o:cisco:ios_xe:3.17.1s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.17.0s
cpe:2.3:o:cisco:ios_xe:3.17.0s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.2as
cpe:2.3:o:cisco:ios_xe:3.16.2as:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.15.1s
cpe:2.3:o:cisco:ios_xe:3.15.1s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.14.2s
cpe:2.3:o:cisco:ios_xe:3.14.2s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.15.1cs
cpe:2.3:o:cisco:ios_xe:3.15.1cs:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.0s
cpe:2.3:o:cisco:ios_xe:3.16.0s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.14.4s
cpe:2.3:o:cisco:ios_xe:3.14.4s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.14.3s
cpe:2.3:o:cisco:ios_xe:3.14.3s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.15.0s
cpe:2.3:o:cisco:ios_xe:3.15.0s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.14.0s
cpe:2.3:o:cisco:ios_xe:3.14.0s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.0cs
cpe:2.3:o:cisco:ios_xe:3.16.0cs:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.15.3s
cpe:2.3:o:cisco:ios_xe:3.15.3s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.1as
cpe:2.3:o:cisco:ios_xe:3.16.1as:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.1s
cpe:2.3:o:cisco:ios_xe:3.16.1s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.15.2s
cpe:2.3:o:cisco:ios_xe:3.15.2s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.14.1s
cpe:2.3:o:cisco:ios_xe:3.14.1s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.2bs
cpe:2.3:o:cisco:ios_xe:3.16.2bs:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.17.1as
cpe:2.3:o:cisco:ios_xe:3.17.1as:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.15.4s
cpe:2.3:o:cisco:ios_xe:3.15.4s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.18.0s
cpe:2.3:o:cisco:ios_xe:3.18.0s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.18.1s
cpe:2.3:o:cisco:ios_xe:3.18.1s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.3as
cpe:2.3:o:cisco:ios_xe:3.16.3as:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.4s
cpe:2.3:o:cisco:ios_xe:3.16.4s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.17.3s
cpe:2.3:o:cisco:ios_xe:3.17.3s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.18.0as
cpe:2.3:o:cisco:ios_xe:3.18.0as:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.5s
cpe:2.3:o:cisco:ios_xe:3.16.5s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.4ds
cpe:2.3:o:cisco:ios_xe:3.16.4ds:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.18.3vs
cpe:2.3:o:cisco:ios_xe:3.18.3vs:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.18.2s
cpe:2.3:o:cisco:ios_xe:3.18.2s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.18.3s
cpe:2.3:o:cisco:ios_xe:3.18.3s:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.4as
cpe:2.3:o:cisco:ios_xe:3.16.4as:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.4bs
cpe:2.3:o:cisco:ios_xe:3.16.4bs:*:*:*:*:*:*:*
Matching versions
Cisco » Ios Xe » Version: 3.16.6s
cpe:2.3:o:cisco:ios_xe:3.16.6s:*:*:*:*:*:*:*
Matching versions

CVE-2017-6627 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Cisco IOS Software and Cisco IOS XE Software UDP Packet Processing Denial-of-Service Vulnerability

CISA required action:

Apply updates per vendor instructions.

CISA description:

A vulnerability in the UDP processing code of Cisco IOS and IOS XE could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and denial of service.

Notes:

https://nvd.nist.gov/vuln/detail/CVE-2017-6627

Added on 2022-03-03 Action due date 2022-03-24

Exploit prediction scoring system (EPSS) score for CVE-2017-6627

EPSS FAQ

10.89%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 93 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-6627

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-04
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST	2024-03-04
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2017-6627

CWE-399
Assigned by:
- psirt@cisco.com (Secondary)
- ykramarz@cisco.com (Secondary)
CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-6627

http://www.securityfocus.com/bid/100644

Cisco IOS and Cisco IOS XE CVE-2017-6627 Denial of Service Vulnerability
Third Party Advisory;VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170906-ios-udp

Cisco IOS and Cisco IOS XE Software UDP Packet Processing Denial of Service Vulnerability
Mitigation;Vendor Advisory
http://www.securitytracker.com/id/1039289

Cisco IOS/IOS XE UDP Packet Processing Flaw Lets Remote Users Deny Service - SecurityTracker
Third Party Advisory;VDB Entry